SecurityWeek

Vulnerability in Totolink Range Extender Allows Device Takeover

A vulnerability in Totolink EX200 leads to the launch of an unauthenticated root-level Telnet service, allowing complete ...
Security Boulevard

Top CVEs of December 2025

December 2025 was a brutal reality check for security teams. While most were winding down for the holidays, threat actors weaponized a tectonic shift in the landscape, headlined by the... The post Top ...

Apache StreamPipes Flaw Lets Anyone Become Admin

Sometimes a breach doesn’t kick down the front door. It just changes the name on the badge.

This SmarterMail vulnerability allows Remote Code Execution - here's what we know

Business-grade email server software SmarterMail just patched a maximum-severity vulnerability that allowed threat actors to ...
The Beaumont Enterprise

The #iwasfifteen hashtag and ongoing Epstein coverage show how traffickers exploit the vulnerabilities of teens and tweens

(THE CONVERSATION) The release of information about the powerful cadre of men associated with convicted sex offender and accused sex trafficker Jeffrey Epstein – known as the Epstein files – has been ...
Forbes

‘Zero‑Click Google Drive Wiper’ Exploit Mass‑Deletes Files

A polite email asking an AI browser to “organize your Drive” can silently wipe your files. No phishing link or suspicious attachment required. Just a friendly request that turns an automated assistant ...
CSOonline

What are zero-day attacks and why do they work?

Zero-day attacks have become a significant concern in the realm of cybersecurity, posing a formidable challenge to individuals and organizations alike. These attacks exploit vulnerabilities that are ...
Hosted on MSN

Payment platform vulnerabilities criminals exploit to drain bank accounts and steal identities

Fugitive football coach disappeared into woods with gun, family says Top Marine Commander Ousted I Was A Happily Married Mother Of 4. Then I Met A Woman At Pilates. Texas football rankings: Can ...
Defense News

Military experts warn security hole in most AI chatbots can sow chaos

Current and former military officers are warning that countries are likely to exploit a security hole in artificial intelligence chatbots. (Getty Images) Current and former military officers are ...
Forbes

Ongoing Ransomware Attacks Exploit Linux Vulnerability, CISA Warns

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Admit it: the first thing you think of when ransomware is ...
CSOonline

Chromium flaw crashes Chrome, Edge, Atlas: Researcher publishes exploit after Google’s silence

The vulnerability, dubbed Brash, can crash browsers within seconds by flooding the document.title API, and Google’s silence raises questions about its disclosure process. A vulnerability in Chromium’s ...
Bleeping Computer

Gladinet fixes actively exploited zero-day in file-sharing software

Gladinet has released security updates for its CentreStack business solution to address a local file inclusion vulnerability (CVE-2025-11371) that threat actors have leveraged as a zero-day since late ...